OpenLDAP 2.6 and 2.5.9

The OpenLDAP project has announced the release of versions 2.6 and 2.5.8 of their LDAP directory server. Changes included in these releases include:

  • Added support for logging to a file as an alternative to syslog (version 2.6)
  • Added support for new load-balancing strategies (version 2.6)
  • Improved support for certain controls and extended operations through the LDAP load balancer (version 2.6)
  • Fixed an issue that could prevent importing an access log database from an OpenLDAP 2.4 server (version 2.5.9)

OpenLDAP 2.5.8

The OpenLDAP project has announced the release of version 2.5.8 of their LDAP directory server. Changes in this release include:

  • Fixed a memory leak in syncrepl processing
  • Fixed a memory leak in client code used to obtain a peer certificate
  • Fixed a TLS-related issue introduced when converting configuration from slapd.conf to cn=config
  • Fixed a potential crash in password quality checking
  • Fixed an issue preventing attribute values from being deleted
  • Fixed an issue preventing users from setting a custom password policy
  • Fixed an issue with the equality matching rule for the namingContexts attribute
  • Fixed an issue with excessive logging for password policy processing
  • Fixed an issue affecting the ability to set up MySQL for use as a backend database
  • Fixed issues with the WiredTiger backend

OpenLDAP 2.5.7

The OpenLDAP project has announced the release of version 2.5.7 of their LDAP directory server. Changes in this release include:

  • Fixed an issue that could cause the server to become unresponsive after multiple changes to the configuration
  • Fixed an issue that could cause the server to crash when adding multiple values to an attribute that is defined without an equality matching rule
  • Fixed an issue that could prevent certain types of changes from being logged properly
  • Fixed an issue that could cause excessive logging for entries without a password changed time
  • Fixed an issue that could leave transactions open when using the back-sql backend
  • Fixed an issue that prevent password policy from working properly in conjunction with the back-sql backend
  • Fixed an issue that could cause the server to return duplicate password expiration controls
  • Fixed potential issues with tracking the state of client connections
  • Fixed an issue that could cause the server to incorrectly report that a configuration entry was missing a structural object class
  • Fixed an issue that could cause the server to incorrectly report the number of operations being processed
  • Added documentation improvements

OpenLDAP 2.5.6

The OpenLDAP project has announced the release of version 2.5.6 of their LDAP directory server. Changes in this release include:

  • Fixed a potential buffer overflow in the LDAP client library
  • Fixed a potential crash when updating the configuration
  • Fixed a case in which an acquired lock may not have been released
  • Fixed an issue with the configuration of the LDAP load-balancer component
  • Fixed an issue in which removing a configuration attribute did not reset the property to its default value
  • Fixed an issue that could arise when using TCP wrappers with IPv6 connections

OpenLDAP 2.6.3 and 2.5.13

The OpenLDAP project has announced the release of versions 2.6.3 and 2.5.13 of their LDAP directory server. Changes included in these releases include:

  • Fixed numerous memory leaks and other memory management issues (both versions)
  • Fixed an issue that could crash the server when performing a replication refresh (version 2.6.3)
  • Fixed an issue that could crash the server with both rwm and ppolicy enabled (both versions)
  • Fixed an issue that could interfere with replication if an instance went offline for an extended period of time (both versions)
  • Fixed an issue in which killing a process accessing the a could interfere with other processes accessing the same database (both versions)
  • Fixed an issue that prevented the server from working properly on some types of BSD systems (both versions)
  • Fixed a backward-compatibility issue with the automatic group overlay (both versions)
  • Fixed an issue in which lastbind updates were not properly chained on read-only consumers (version 2.6.3)
  • Fixed an issue in which the rwm overlay did not properly handle DNs with special characters (version 2.6.3)
  • Fixed an issue in which notice of disconnection unsolicited notifications were not properly encoded (version 2.6.3)
  • Added support for case-insensitive matching of Boolean values (version 2.6.3)
  • Added support for allowing empty directory strings (both versions)
  • Updated the 2.2 release of the ppm module (version 2.6.3)

OpenLDAP 2.4.58

The OpenLDAP project has announced the release of OpenLDAP version 2.4.58. From the release announcement, the changes in this release appear to be:

  • Fixed a potential crash that could occur when receiving a malicious packet
  • Fixed a memory management issue in connection handling
  • Fixed an issue that could cause syncrepl to recreate an entry that had been deleted
  • Fixed a deadlock detection issue when using the Berkeley DB database backend

Symas OpenLDAP 2.6

Symas has released version version 2.6 of their pre-built version of OpenLDAP. Their announcement lists the following changes:

  • Added the ability to log to a file as an alternative to syslog
  • Retired support for the back-ndb backend
  • Deprecated support for the back-sql and back-perl backends
  • Added additional load-balancing strategies
  • Improved support for certain controls and extended operations through the LDAP load balancer

OpenLDAP 2.6.2 and 2.5.12

The OpenLDAP project has announced the release of versions 2.6.2 and 2.5.12 of their LDAP directory server. Changes included in these releases include:

  • Fixed a potential crashes in several backends (both versions)
  • Fixed a potential crash when replicating with DSEE and an unknown attribute type is encountered (both versions)
  • Fixed a potential crash in the slapo-translucent overlay with substring filters (both versions)
  • Fixed memory leaks in the back-meta backend (both versions)
  • Fixed an issue with memberOf searches (both versions)
  • Fixed an issue with connections with outstanding operations when starting a bind (both versions)
  • Fixed a syncrepl issue with new sessions (both versions)
  • Fixed an issue with idle timeout handling (both versions)
  • Fixed an issue with pwdChangedTime handling (both versions)
  • Fixed an issue with filter escaping in the back-sql backend (both versions)
  • Updated libldap to terminate a connection after receiving non-LDAP data (both versions)
  • Updated ldapdelete to support LDAP subentries (version 2.6.2)
  • Added support for OpenSSL 3.0 (version 2.6.2)
  • Fixed an issue with thread-local counters (both versions)
  • Fixed an libldap with blank lines at the end of a file (both versions)